SwissSign Managed PKI

Prerequisites

  • Your managed PKI credentials, given to you by SwissSign.

Create the PKI connector

1. Log in to Horizon Administration Interface.

2. Access PKI from the drawer or card: PKI  PKI Connectors.

3. Click on Add icon.

4. Select the correct PKI type.

5. Click on the next button

General tab

6. Fill in the common mandatory fields:

  • Connector Name* (string input):
    Choose a meaningful connector name allowing to identify the mapping between the PKI and the Certificate Profile. It must be unique and must not contain spaces.

  • Proxy (string select):
    If the PKI is not directly reachable from Horizon, you can set up an HTTP/HTTPS proxy to properly forward the traffic.

  • PKI Queue (string select):
    The PKI Queue used to manage the PKI Requests (enrollment, revocation).

  • Timeout (finite duration):
    Represents a predefined interval of time without a PKI response, when the time has passed "Horizon" will cease trying to establish the communication. Must be a valid finite duration.

7. Click on the next button

8. Fill all mandatory fields:

  • Endpoint Type* (select):
    Choose between the production and preproduction environment of the SwissSign API.

  • Login Credentials* (select):
    Select Login credentials containing the mpki identifier as login (ex: mpkiXXXXXX.XXX) and the API key as password (ex: IDJjdznbGDziojDBduzh…​).

Then click the connect button to retrieve the available products for your MPKI. Then, fill the product field for this connector:

  • Product* (select):
    Select the product you wish to link with this connector.

9. Click on the save button.

You can edit Edit PKI, duplicate Duplicate PKI or delete Delete PKI the SwissSign Managed PKI connector.